Firewall remote log page – Motorola SURFBOARD SVG2500 User Manual

7 SVG2500 FIREWALL PAGES

87

Firewall Remote Log Page

This page allows you to send firewall attack reports out to a standard SysLog server
so many instances can be logged over a long period of time. You can select individual
attack or configuration items to send to the SysLog server so that only the items of
interest will be monitored. You can log permitted connections, blocked connections,
known Internet attack types, and CMRG configuration events. The SysLog server
must be on the same network as the Private LAN behind the Configuration Manager
(typically 192.168.0.x). To activate the SysLog monitoring feature, check all desired
event types to monitor and enter the last byte of the IP address of the SysLog
server. Normally, the IP address of this SysLog server would be hard-coded so that
the address does not change and always agrees with the entry on this page.

Field

Description

Permitted Connections

Check for the server to e-mail you logs of who is connecting to
your network.

Blocked Connections

Check for the server to e-mail you logs of who is blocked from
connecting to your network.

Known Internet Attacks

Check for the server to e-mail you logs of known Internet attacks
against your network.

Product Configuration Events

Check for the server to e-mail you logs of the basic product
configuration events logs.

To SysLog server at 192.168.0.

Enter the last digits from 10 to 254 of your SysLog server’s IP
address.

When done, click Apply.